Skills
.Work. You
Rest

auth-review

Community

Audit auth design for secure access control.

Software Engineering#authorization#authentication#RBAC#JWT#auth#security-review#ABAC
Authoradrien-barret
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This Skill helps security engineers review authentication and authorization design across codebases to identify weaknesses in token handling, session management, and access controls.

Core Features & Use Cases

  • Identify authentication mechanisms (JWT, OAuth, API keys) and how they are integrated.
  • Map token issuance, validation, and refresh flows; check for expiration handling and TTLs.
  • Assess authorization models (RBAC/ABAC) and ensure centralized checks; flag ad-hoc comparisons.
  • Detect potential privilege escalation risks and IDORs; review CSRF and cookie security settings.
  • Provide remediation guidance and prioritized risk mitigation for secure design.

Quick Start

Run a security review focusing on the auth layer by scanning for token lifetimes, session cookies, and authorization checks. Generate a concise report with findings and recommended mitigations.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: auth-review
Download link: https://github.com/adrien-barret/claude-kit/archive/main.zip#auth-review

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.